Log

AVG-1252 created at 15 Oct 2020 15:20:30
Packages
+ matrix-synapse
Issues
+ CVE-2020-26891
Status
+ Vulnerable
Severity
+ Unknown
Affected
+ 1.21.0-1
Fixed
Ticket
Advisory qualified
+ Yes
References
+ https://github.com/matrix-org/synapse/releases/tag/v1.21.2
Notes
CVE-2020-26891 created at 15 Oct 2020 15:20:30
AVG-1251 created at 15 Oct 2020 07:46:06
Packages
+ linux-hardened
Issues
+ CVE-2020-12351
+ CVE-2020-12352
+ CVE-2020-24490
Status
+ Vulnerable
Severity
+ High
Affected
+ 5.8.14.a-1
Fixed
Ticket
Advisory qualified
+ Yes
References
+ https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00435.html
Notes
AVG-1250 created at 15 Oct 2020 07:46:04
Packages
+ linux-lts
Issues
+ CVE-2020-12351
+ CVE-2020-12352
+ CVE-2020-24490
Status
+ Vulnerable
Severity
+ High
Affected
+ 5.4.71-1
Fixed
Ticket
Advisory qualified
+ Yes
References
+ https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00435.html
Notes
AVG-1249 created at 15 Oct 2020 07:46:02
Packages
+ linux-zen
Issues
+ CVE-2020-12351
+ CVE-2020-12352
+ CVE-2020-24490
Status
+ Vulnerable
Severity
+ High
Affected
+ 5.9.zen1-1
Fixed
Ticket
Advisory qualified
+ Yes
References
+ https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00435.html
Notes
AVG-1248 edited at 15 Oct 2020 07:44:33
Notes
+ https://git.kernel.org/pub/scm/linux/kernel/git/bluetooth/bluetooth-next.git/commit/?id=a2ec905d1e160a33b2e210e45ad30445ef26ce0e
+ https://lore.kernel.org/linux-bluetooth/20200806181714.3216076-1-luiz.dentz@gmail.com/
+ https://lore.kernel.org/linux-bluetooth/20200806181714.3216076-2-luiz.dentz@gmail.com/
+ https://lore.kernel.org/linux-bluetooth/20200806181714.3216076-3-luiz.dentz@gmail.com/
+ https://lore.kernel.org/linux-bluetooth/20200806181714.3216076-4-luiz.dentz@gmail.com/
CVE-2020-24490 edited at 15 Oct 2020 07:42:06
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Remote
Type
- Unknown
+ Denial of service
Description
+ Improper buffer restrictions in the BlueZ component of Linux before 5.10 may allow an unauthenticated user to potentially enable denial of service via adjacent access.
References
+ https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00435.html
Notes
CVE-2020-12352 edited at 15 Oct 2020 07:41:43
Description
- mproper access control in the BlueZ component of Linux before 5.10 may allow an unauthenticated user to potentially enable information disclosure via adjacent access.
+ Improper access control in the BlueZ component of Linux before 5.10 may allow an unauthenticated user to potentially enable information disclosure via adjacent access.
CVE-2020-12352 edited at 15 Oct 2020 07:41:32
Severity
- Unknown
+ High
Remote
- Unknown
+ Remote
Type
- Unknown
+ Information disclosure
Description
+ mproper access control in the BlueZ component of Linux before 5.10 may allow an unauthenticated user to potentially enable information disclosure via adjacent access.
References
+ https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00435.html
Notes
AVG-1248 edited at 15 Oct 2020 07:41:07
Severity
- Unknown
+ High
CVE-2020-12351 edited at 15 Oct 2020 07:41:07
Severity
- Unknown
+ High
Remote
- Unknown
+ Remote
Type
- Unknown
+ Privilege escalation
Description
+ Improper input validation in the BlueZ component of Linux before 5.10 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.
References
+ https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00435.html
Notes
AVG-1248 created at 15 Oct 2020 07:40:11
Packages
+ linux
Issues
+ CVE-2020-12351
+ CVE-2020-12352
+ CVE-2020-24490
Status
+ Vulnerable
Severity
+ Unknown
Affected
+ 5.9.arch1-1
Fixed
Ticket
Advisory qualified
+ Yes
References
+ https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00435.html
Notes
CVE-2020-12352 created at 15 Oct 2020 07:40:11